Robert Falcone, Author at Unit42

19,416

people reacted

More xHunt – New PowerShell Backdoor Blocked Through DNS Tunnel Detection

By Robert Falcone and Brittany Ash
October 10, 2019 at 5:00 AM

11 min. read

31,100

people reacted

xHunt Campaign: Attacks on Kuwait Shipping and Transportation Organizations

By Robert Falcone and Brittany Ash
September 23, 2019 at 6:00 AM

22 min. read

33,259

people reacted

Emissary Panda Attacks Middle East Government Sharepoint Servers

By Robert Falcone and Tom Lancaster
May 28, 2019 at 6:00 AM

13 min. read

38,854

people reacted

Behind the Scenes with OilRig

By Bryan Lee and Robert Falcone
April 30, 2019 at 6:00 AM

24 min. read

29,019

people reacted

Aggah Campaign: Bit.ly, BlogSpot, and Pastebin Used for C2 in Large Scale Campaign

By Robert Falcone and Brittany Ash
April 17, 2019 at 12:01 AM

14 min. read

DNS Tunneling in the Wild: Overview of OilRig’s DNS Tunneling

By Robert Falcone
April 16, 2019 at 9:00 AM

37 min. read

24,384

people reacted

New Python-Based Payload MechaFlounder Used by Chafer

By Robert Falcone and Brittany Ash
March 4, 2019 at 6:00 AM

8 min. read

DarkHydrus delivers new Trojan that can use Google Drive for C2 communications

By Robert Falcone and Bryan Lee
January 18, 2019 at 10:40 AM

14 min. read

Shamoon 3: Modified Open-Source Wiper Contains Verse from the Quran

By Robert Falcone
December 19, 2018 at 9:00 AM

10 min. read

23,919

people reacted

Sofacy Creates New ‘Go’ Variant of Zebrocy Tool

By Robert Falcone
December 18, 2018 at 6:00 AM

10 min. read

Shamoon 3 Targets Oil and Gas Organization

By Robert Falcone
December 13, 2018 at 10:52 AM

6 min. read

Dear Joohn: The Sofacy Group’s Global Campaign

By Bryan Lee and Robert Falcone
December 12, 2018 at 6:00 AM

14 min. read

18,056

people reacted

Sofacy Continues Global Attacks and Wheels Out New ‘Cannon’ Trojan

By Robert Falcone and Bryan Lee
November 20, 2018 at 6:00 AM

13 min. read

11,102

people reacted

Analyzing OilRig’s Ops Tempo from Testing to Weaponization to Delivery

By Robert Falcone and Kyle Wilhoit
November 16, 2018 at 8:00 AM

15 min. read

18,079

people reacted

OilRig Uses Updated BONDUPDATER to Target Middle Eastern Government

By Kyle Wilhoit and Robert Falcone
September 12, 2018 at 4:00 PM

9 min. read

Posts created by: Robert Falcone

More xHunt – New PowerShell Backdoor Blocked Through DNS Tunnel Detection

xHunt Campaign: Attacks on Kuwait Shipping and Transportation Organizations

Emissary Panda Attacks Middle East Government Sharepoint Servers

Behind the Scenes with OilRig

Aggah Campaign: Bit.ly, BlogSpot, and Pastebin Used for C2 in Large Scale Campaign

DNS Tunneling in the Wild: Overview of OilRig’s DNS Tunneling

New Python-Based Payload MechaFlounder Used by Chafer

DarkHydrus delivers new Trojan that can use Google Drive for C2 communications

Shamoon 3: Modified Open-Source Wiper Contains Verse from the Quran

Sofacy Creates New ‘Go’ Variant of Zebrocy Tool

Shamoon 3 Targets Oil and Gas Organization

Dear Joohn: The Sofacy Group’s Global Campaign

Sofacy Continues Global Attacks and Wheels Out New ‘Cannon’ Trojan

Analyzing OilRig’s Ops Tempo from Testing to Weaponization to Delivery

OilRig Uses Updated BONDUPDATER to Target Middle Eastern Government

Popular Resources

Legal Notices

Account

Trending

Popular Resources

Legal Notices

Account